baoyu-post-to-x

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's md-to-html.ts runtime (resolveImagePath/downloadFile) fetches remote HTTPS images referenced in arbitrary Markdown and x-article.ts calls parseMarkdown to download those images and paste the generated HTML/content into the X editor, so untrusted/public third‑party content is fetched and directly influences the posting workflow.